漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Privilege Escalation in Dialogflow CX via Playbook Import
Vulnerability Description
A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user with specific roles to escalate privileges and potentially take over a GCP project using a maliciously crafted playbook import. This vulnerability was patched on 15 March 2026, and no customer action is needed.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
Google Cloud Platform Dialogflow CX 安全漏洞
Vulnerability Description
Google Cloud Platform Dialogflow CX是美国谷歌(Google)公司的一个基于自然语言理解和生成式AI的对话式智能体开发平台。 Google Cloud Platform Dialogflow CX存在安全漏洞,该漏洞源于playbook导入功能缺少授权,可能导致具有特定角色的经过身份验证的用户提升权限并接管GCP项目。
CVSS Information
N/A
Vulnerability Type
N/A